thePR0M3TH3AN
|
68341db0fe
|
Merge pull request #733 from PR0M3TH3AN/codex/use-hmac.compare_digest-for-token-verification
Use constant-time token comparison
|
2025-08-03 12:45:21 -04:00 |
|
thePR0M3TH3AN
|
3dc10ae448
|
Use constant-time token comparison
|
2025-08-03 12:39:43 -04:00 |
|
thePR0M3TH3AN
|
23a3ae3928
|
Merge pull request #732 from PR0M3TH3AN/codex/update-agents.md-with-migration-plan
docs: add migration guidance
|
2025-08-03 11:46:24 -04:00 |
|
thePR0M3TH3AN
|
f664a6c40f
|
fix: migrate legacy nostr payloads
|
2025-08-03 11:41:06 -04:00 |
|
thePR0M3TH3AN
|
44ce005cdc
|
test: cover legacy migration prompt and sync
|
2025-08-03 11:29:23 -04:00 |
|
thePR0M3TH3AN
|
01fe849f90
|
Merge pull request #731 from PR0M3TH3AN/codex/remove-sensitive-debug-logging
Remove sensitive debug logging
|
2025-08-03 11:05:13 -04:00 |
|
thePR0M3TH3AN
|
d75cc760d3
|
Remove sensitive debug logging
|
2025-08-03 11:02:36 -04:00 |
|
thePR0M3TH3AN
|
42aa945b00
|
Merge pull request #730 from PR0M3TH3AN/codex/update-readme-and-documentation
Clarify Nostr vault restoration requirements
|
2025-08-03 10:39:43 -04:00 |
|
thePR0M3TH3AN
|
a9c5deb800
|
Document restoration requirements
|
2025-08-03 10:38:55 -04:00 |
|
thePR0M3TH3AN
|
b72452a734
|
Merge pull request #729 from PR0M3TH3AN/codex/add-gitleaks-or-trufflehog-job
ci: add gitleaks scanning
|
2025-08-03 10:30:00 -04:00 |
|
thePR0M3TH3AN
|
2c44f51fc4
|
ci: add secret scanning
|
2025-08-03 10:27:13 -04:00 |
|
thePR0M3TH3AN
|
59c06041fd
|
Merge pull request #728 from PR0M3TH3AN/codex/generate-new-requirements.lock-with-hashes
Use hashed requirements lock and enforce in CI
|
2025-08-03 10:20:32 -04:00 |
|
thePR0M3TH3AN
|
b0db9806b3
|
Regenerate lockfile with Python 3.11
|
2025-08-03 10:18:08 -04:00 |
|
thePR0M3TH3AN
|
6f885bd65e
|
Use hashed requirements lock
|
2025-08-03 10:08:50 -04:00 |
|
thePR0M3TH3AN
|
c3ed4c08ee
|
Merge pull request #727 from PR0M3TH3AN/codex/update-gui-to-install-pinned-toga-versions
feat: secure GUI backend installation
|
2025-08-03 09:59:32 -04:00 |
|
thePR0M3TH3AN
|
68f47052c3
|
feat: secure GUI backend installation
|
2025-08-03 09:57:32 -04:00 |
|
thePR0M3TH3AN
|
a16310b04b
|
Merge pull request #726 from PR0M3TH3AN/codex/add-tests-for-key-derivation-with-fingerprints
Add fingerprint-based key derivation tests
|
2025-08-03 09:51:58 -04:00 |
|
thePR0M3TH3AN
|
1e544a7d41
|
test: add fingerprint consistency tests for key derivation
|
2025-08-03 09:49:21 -04:00 |
|
thePR0M3TH3AN
|
cb37783354
|
Merge pull request #725 from PR0M3TH3AN/codex/update-key-derivation-functions-to-use-fingerprint
Use fingerprint-based salt for password key derivation
|
2025-08-03 09:45:03 -04:00 |
|
thePR0M3TH3AN
|
5423c41b06
|
Include fingerprint salt in password key derivation
|
2025-08-03 09:37:59 -04:00 |
|
thePR0M3TH3AN
|
2794b67d83
|
Merge pull request #724 from PR0M3TH3AN/codex/replace-random.random-with-cryptographic-shuffle
Use HMAC-based deterministic shuffle
|
2025-08-03 09:27:11 -04:00 |
|
thePR0M3TH3AN
|
aad41929bf
|
Use HMAC DRNG for RSA PGP keys
|
2025-08-03 09:24:50 -04:00 |
|
thePR0M3TH3AN
|
4f09ad5c26
|
Use HMAC-based deterministic shuffle
|
2025-08-03 09:15:43 -04:00 |
|
thePR0M3TH3AN
|
3cdf391742
|
Merge pull request #723 from PR0M3TH3AN/codex/switch-to-atomic-writes-in-fingerprint_manager-and-manager
Use atomic file writes for persistent data
|
2025-08-03 09:02:20 -04:00 |
|
thePR0M3TH3AN
|
032caed3d0
|
Add atomic write utility and tests
|
2025-08-03 08:57:04 -04:00 |
|
thePR0M3TH3AN
|
2294656f36
|
Merge pull request #722 from PR0M3TH3AN/codex/hash-jwt-in-start_server-and-update-checks
Hash JWT token in API
|
2025-08-03 08:51:15 -04:00 |
|
thePR0M3TH3AN
|
9d9f8a8bae
|
Hash JWT token in API
|
2025-08-03 08:50:57 -04:00 |
|
thePR0M3TH3AN
|
9d80f7b607
|
Merge pull request #721 from PR0M3TH3AN/codex/add-rate-limiting-to-api
Add request rate limiting to API
|
2025-08-03 08:44:22 -04:00 |
|
thePR0M3TH3AN
|
e5f1158101
|
Test API rate limiting
|
2025-08-03 08:41:22 -04:00 |
|
thePR0M3TH3AN
|
c7df96aac5
|
Merge pull request #720 from PR0M3TH3AN/codex/set-up-dependabot-and-audit-workflow
chore: enable automated dependency auditing
|
2025-08-03 08:33:54 -04:00 |
|
thePR0M3TH3AN
|
5acd1d489d
|
chore: add dependency auditing
|
2025-08-03 08:32:57 -04:00 |
|
thePR0M3TH3AN
|
f66e8b4776
|
Merge pull request #719 from PR0M3TH3AN/codex/update-dependencies-and-regenerate-lockfile
chore(deps): update aiohttp and python-multipart
|
2025-08-03 08:25:41 -04:00 |
|
thePR0M3TH3AN
|
10a03384d0
|
chore(deps): update aiohttp and python-multipart
|
2025-08-03 08:23:56 -04:00 |
|
thePR0M3TH3AN
|
7631d32bc6
|
Merge pull request #718 from PR0M3TH3AN/codex/replace-auto-install-logic-in-cli.gui
feat(cli): require manual GUI backend install
|
2025-08-03 08:17:57 -04:00 |
|
thePR0M3TH3AN
|
6dabbaa31e
|
feat(cli): require manual GUI backend install
|
2025-08-03 08:17:41 -04:00 |
|
thePR0M3TH3AN
|
4228d82295
|
Merge pull request #717 from PR0M3TH3AN/codex/update-xclip-installation-method
docs: clarify manual clipboard dependencies
|
2025-08-03 08:12:43 -04:00 |
|
thePR0M3TH3AN
|
ccca399b09
|
docs: clarify manual clipboard dependencies
|
2025-08-03 08:12:25 -04:00 |
|
thePR0M3TH3AN
|
36061493ac
|
Merge pull request #716 from PR0M3TH3AN/codex/normalize-and-validate-encryption-paths
Validate encryption paths to block traversal
|
2025-08-03 07:56:35 -04:00 |
|
thePR0M3TH3AN
|
f1bf65385c
|
Validate encryption paths and block traversal
|
2025-08-03 07:54:07 -04:00 |
|
thePR0M3TH3AN
|
906e3921a2
|
Merge pull request #715 from PR0M3TH3AN/codex/remove-or-secure-api/v1/parent-seed-endpoint
Remove insecure parent seed endpoint
|
2025-08-02 22:02:15 -04:00 |
|
thePR0M3TH3AN
|
7aeba78245
|
Remove insecure parent seed endpoint
|
2025-08-02 22:01:38 -04:00 |
|
thePR0M3TH3AN
|
087b3bd657
|
Merge pull request #714 from PR0M3TH3AN/codex/refactor-start_server-for-security-enhancements
feat: add short-lived JWT auth and secure endpoints
|
2025-08-02 21:49:39 -04:00 |
|
thePR0M3TH3AN
|
186e39cc91
|
feat: add short-lived JWT auth and secure endpoints
|
2025-08-02 21:48:52 -04:00 |
|
thePR0M3TH3AN
|
8c9fe07609
|
Merge pull request #713 from PR0M3TH3AN/codex/replace-seed-validation-with-bip-39-check
Add BIP-39 seed validation
|
2025-08-02 21:38:45 -04:00 |
|
thePR0M3TH3AN
|
2f0eb44a44
|
Return error message from validate_seed
|
2025-08-02 21:38:16 -04:00 |
|
thePR0M3TH3AN
|
aeb146f862
|
Merge pull request #711 from PR0M3TH3AN/codex/add-password-mode-selection-and-quick-mode
feat: add quick password entry mode
|
2025-08-02 16:52:38 -04:00 |
|
thePR0M3TH3AN
|
7f503f0787
|
feat: add quick password entry mode
|
2025-08-02 16:43:43 -04:00 |
|
thePR0M3TH3AN
|
7a8c0aef86
|
Merge pull request #710 from PR0M3TH3AN/codex/add-entry-type-to-search-results
Include entry type in search results
|
2025-08-02 16:34:01 -04:00 |
|
thePR0M3TH3AN
|
dcd095d1af
|
Include entry type in search results
|
2025-08-02 16:26:52 -04:00 |
|
thePR0M3TH3AN
|
b4f792ad67
|
Merge pull request #709 from PR0M3TH3AN/codex/add-key-validation-module-and-update-entrymanager
Add key validation helpers and enforce in entry management
|
2025-08-01 10:43:47 -04:00 |
|